On 8 Sep 95 at 11:34, Leo Savage wrote:
> On Fri, 8 Sep 1995, Robert Sanders wrote:
>
> > From a Unix box, telnet to your portmaster. At the login prompt,
> > escape back to the telnet command prompt (i.e. type '^]') and type
> > 'send brk'. That's it.
>
> Yep, it just rebooted my Portmaster too. I have a Portmaster 2eR with
> ten lines installed. However, it happened to me with version 3.1.2, NOT
> 3.1.3, so I do not think that downgrading will solve your problem.
>
> A hacker with a grudge could be a real nuisance with this.
>
Another reason to use packet filters on your PortMaster. Allow Telnet
connections only from your admin workstations and forbid the rest
(x.x.x.x is the PM's address, y.y.y.y the address of the admin's
workstation):
set filter internet.in deny 0.0.0.0/0 x.x.x.x/32 tcp dst eq 23 log
set s0 ifilter internet.in
set filter ether0.in permit y.y.y.y/32 x.x.x.x/32 tcp dst 23
set filter ether0.in deny 0.0.0.0/24 x.x.x.x/32 tcp dst 23 log
set ether0 ifilter ether0.in
There are no output filters in the above statement, they should be
defined as well.
regards,
Frank
-- ***** The expressed opinions are totally mine! ***** Frank M. Heinzius MMS Communication GmbH frimp@mms-gmbh.de Eiffestrasse 598 Phone: +49 40 211105-0 Fax: +49 40 210 32 210